866a7bd59ed33d4a47c75f46f6dc69ea3bae3e1a7158fbae3c3f2d3bcb25b876 | Triage

Sharing

General

Target

3cab3828c2d000477c6c022ebe4ee1c0_NeikiAnalytics.exe
Size

335KB
Sample

240522-z1kw5sgh59
MD5

3cab3828c2d000477c6c022ebe4ee1c0
SHA1

d96615cda889c2b545b66d2f0493eaa6a1481e54
SHA256

866a7bd59ed33d4a47c75f46f6dc69ea3bae3e1a7158fbae3c3f2d3bcb25b876
SHA512

318de4549e6a9e6868edd13fc90180180b71216e8352cbe85056b12a90d782e3271e14cc8ff87ecc9a7f2d92c8b6571eb9035eda96a1d68898ec70a2b08e4be1
SSDEEP

6144:B1wq+vLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:B1E

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3cab3828c2d000477c6c022ebe4ee1c0_NeikiAnalytics.exe
- Size
  
  335KB
- MD5
  
  3cab3828c2d000477c6c022ebe4ee1c0
- SHA1
  
  d96615cda889c2b545b66d2f0493eaa6a1481e54
- SHA256
  
  866a7bd59ed33d4a47c75f46f6dc69ea3bae3e1a7158fbae3c3f2d3bcb25b876
- SHA512
  
  318de4549e6a9e6868edd13fc90180180b71216e8352cbe85056b12a90d782e3271e14cc8ff87ecc9a7f2d92c8b6571eb9035eda96a1d68898ec70a2b08e4be1
- SSDEEP
  
  6144:B1wq+vLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:B1E
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2